WorldThreatModelHarness

Warn

Audited by Snyk on Jun 30, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.72). In Workflows/UpdateModels.md, the workflow invokes the Research/WebSearch skill to fetch and synthesize public web content at runtime, and that fetched outsider-authored text is then written into the world model markdown files that the agent later reads for TestIdea/ViewModels—creating an indirect prompt-injection path via stored model prose.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 30, 2026, 03:33 PM
Issues
1
Security Audit — snyk — WorldThreatModelHarness